PHP 5.6 reached its end of life on January 1, 2019, exposing thousands of websites to unpatched security vulnerabilities. In Switzerland, over a third of sites still run PHP 5.6. Experts recommend upgrading to PHP 7.2 or 7.3 to ensure better security. Learn more about the risks and necessary actions.
End of Life for PHP 5.6: Thousands of Websites Exposed to Vulnerabilities
As of January 1, 2019, PHP 5.6, one of the most widely used programming languages for web development, reached its end of life, leaving tens of thousands of websites vulnerable to security risks. PHP is essential for popular CMS platforms such as Wordpress, Drupal, and Joomla, powering nearly 80% of websites worldwide.
Unfortunately, many websites, especially in Switzerland, continue to use outdated versions of PHP, like 5.6, making them vulnerable to exploits that take advantage of unpatched security holes. A report by BinaryEdge found that over a third of Swiss websites are still running PHP 5.6, and 40% are using even older versions. Experts strongly recommend upgrading to PHP 7.2 or 7.3 to mitigate these risks. While Drupal mandates an upgrade to PHP 7.1, Joomla and Wordpress also recommend newer versions for improved security and performance.
Cybersecurity expert Patrick Zwahlen emphasizes that upgrading to a newer version is critical for security, though it often requires significant updates to the website. He also points out the challenges of ensuring updates are applied in hosting environments, particularly when providers fail to update PHP versions. In such cases, clients must take proactive steps to ensure the security of their websites.
Source : ICTjournal
